Home » Cisco Manuals » Bridges & Routers » Cisco SGE2000 » Manual Viewer

Cisco SGE2000 Reference Guide - Page 62

Defining Profile Rules, Source IP Address, Network Mask, Prefix Length, Action, Apply, Security Suite - lag

View all Cisco SGE2000 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 62 highlights

Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide - Port - Specifies the port on which the access profile is defined. - LAG - Specifies the LAG on which the access profile is defined. - VLAN - Specifies the VLAN on which the access profile is defined. • Source IP Address - Defines the interface source IP address to which the access profile applies. The Source IP Address field is valid for a subnetwork. • Network Mask - Determines what subnet the source IP Address belongs to in the network. • Prefix Length - Defines the number of bits that comprise the source IP address prefix, or the network mask of the source IP address. • Action - Defines the action attached to the rule. The possible field values are: - Permit - Permits access to the device. - Deny - Denies access to the device. This is the default. 3. Define the relevant fields. 4. Click Apply. The access profile is added, and the device is updated. Defining Profile Rules Access profiles can contain up to 128 rules that determine which users can manage the switch module, and by which methods. Users can also be blocked from accessing the device. Rules are composed of filters including: • Rule Priority • Interface • Management Method • IP Address • Prefix Length • Forwarding Action To define profile rules: 1. Click Security Suite > Access Method > Profile Rules. The Profile Rules Page opens: 54 Chapter 4: Configuring Device Security Defining Access Method

Section	Page
Getting Started	9
Starting the Application	9
Understanding the Interface	12
Device Representation	13
Using the Linksys Management Buttons	14
Using Screen and Table Options	15
Adding Device Information	15
Modifying Device Information	15
Deleting Device Information	16
Resetting the Device	17
Logging Off The Device	17
Managing Device Information	19
Understanding the Device Zoom View	19
Defining General System Information	20
SGE 2000P System Information	20
Managing Stacks	21
Building Automatically-Configured Stacks	22
Building a New Stack	22
Adding Units to a Running Stack	22
Building Manually-Configured Stacks	22
Building a New Stack	22
Adding Units to a Running Stack	22
Understanding Stack Resiliency	23
Understanding Advanced Stacking	23
Unit IDs	23
Stack Master	23
Stack Backup Master	23
Stack Members	24
Master-Enabled Units	24
Unit ID Allocation	24
Stack Unit Startup Process	25
Master Discovery Process	25
Master Election Process	25
Unit ID Allocation and Duplicate Unit ID Conflict Resolution	26
Configuring Units and Ports	27
Setting the Unit’s Operational Mode	27
Configuring the Stack Master and Unit ID	27
Resetting the Unit to Factory Default Mode	29
Understanding LED Indicators	29
Stack Troubleshooting and Maintenance	29
Replacing a Failed Member Stack Unit in an Operational Stack	29
Replacing a Failed Stack Master Unit in an Operational Stack	31
Splitting a Stack	32
The Stack Master and Backup Master Units Remain in a Group	32
The Stack Master or the Backup Master Unit Remains in a Group	32
Neither the Stack Master Unit or the Backup Master Unit Remains in the Group	33
Merging Two Stacks	34
Understanding Stacking Cable Failure	35
Inserting Too Many Units into a Stack	35
Inserting a Standalone Unit into a Running Stack	36
Viewing Device Health	36
Managing Power-over-Ethernet Devices	39
DefiningPoE System Information	39
Configuring Device Security	45
Passwords Management	46
Defining User Authentication	46
Defining Authentication	48
Defining Profiles	48
Mapping Profiles	50
Defining TACACS+	51
Defining RADIUS	55
Defining Access Method	59
Defining Access Profiles	59
Defining Profile Rules	62
Defining Traffic Control	68
Defining Storm Control	68
Defining Port Security	70
Defining 802.1x	74
Defining 802.1X Properties	75
Defining Port Authentication	76
Defining Multiple Hosts	79
Defining Authenticated Host	82
Defining Access Control	83
Defining MAC Based ACL	83
Defining IP Based ACL	85
Defining ACL Binding	92
Defining DOS Prevention	93
Global Settings	93
Defining Martian Addresses	95
Configuring Device Interfaces	97
Defining Port Settings	97
Defining LAG Management	102
Defining LAG Settings	104
Configuring LACP	107
Configuring VLANs	111
Defining VLAN Properties	112
Defining VLAN Membership	114
Defining Interface Settings	116
Configuring GVRP Settings	119
Protocol Group	122
Protocol Port	124
Configuring IP Information	127
Domain Name System	128
Defining DNS Server	128
Host Mapping	130
Configuring Layer 2	132
Configuring IP Addressing:	132
IP Interface	132
ARP	133
Configuring Layer 3	137
Configuring IP Addressing	137
IP Interface	137
ARP Proxy	140
UDP Relay	141
DHCP Relay	144
ARP	145
Defining IP Routing	148
Defining Address Tables	151
Defining Static Addresses	152
Defining Dynamic Addresses	154
Configuring Multicast Forwarding	157
IGMP Snooping	157
Defining Multicast Bridging Groups	160
Defining Multicast Forwarding	163
Configuring Spanning Tree	165
Defining STP on Interfaces	166
Defining Interface Settings	168
Defining Rapid Spanning Tree	172
Defining Multiple Spanning Tree	176
Defining MSTP Properties	177
Instance to VLAN	178
Instance Settings	178
Interface Settings	179
Configuring SNMP	185
SNMP v1 and v2	185
SNMP v3	185
Configuring SNMP Security	186
Defining Engine ID	186
Defining SNMP Views	187
Defining SNMP Users	189
Define SNMP Groups	191
Defining SNMP Communities	193
Defining Trap Management	197
Defining Trap Settings	197
Configuring Station Management	198
Defining SNMP Filter Settings	204
Configuring Quality of Service	207
Defining General Settings	208
Defining CoS	209
Defining Queue	210
Mapping CoS to Queue	212
Mapping DSCP to Queue	213
Configuring Bandwidth	213
Defining Advanced Mode	216
Configuring DSCP Mapping	216
Defining Class Mapping	217
Defining Aggregate Policer	219
Configuring Policy Table	222
Defining Policy Binding	225
Defining QoS Basic Mode	227
Managing System Files	229
File Management Overview	229
Firmware Upgrade	230
Save Configuration	231
Copy Files	232
Active Image	233
Managing System Logs	235
Enabling System Logs	235
Viewing the Device Memory Logs	237
Clearing Message Logs	237
Viewing the Flash Logs	238
Clearing Message Logs	238
Viewing Remote Logs	239
Configuring System Time	243
Defining System Time	244
Defining SNTP Settings	246
Defining SNTP Authentication	248
Viewing Statistics	251
Viewing Ethernet Statistics	251
Defining Ethernet Interface	251
Resetting Interface Statistics Counters	253
Viewing Etherlike Statistics	253
Resetting Etherlike Statistics Counters	255
Viewing GVRP Statistics	255
Resetting GVRP Statistics Counters	257
Viewing EAP Statistics	257
Managing RMON Statistics	260
Viewing RMON Statistics	261
Resetting RMON Statistics Counters	262
Configuring RMON History	263
Defining RMON History Control	263
Viewing the RMON History Table	266
Configuring RMON Events	267
Defining RMON Events Control	267
Viewing the RMON Events Logs	270
Defining RMON Alarms	271
Managing Device Diagnostics	277
Viewing Integrated Cable Tests	277
Performing Optical Tests	279
Configuring Port Mirroring	280
Defining CPU Utilization	283